Authorization Management is the Key to Smooth But Secure Payments
If you happen to be a fraudster, it’s likely that you are loving all the ways the industry is making it easier for people to pay. The less friction in a payment, the quicker the money moves, and the more opportunity you have to intersect with fraud and move the money away before anyone notices.
On our side of the battle, payments professionals face a daily challenge; how to balance easy access to payments and smooth transactions, with robust fraud defenses?
It’s no secret that with the new, fast and open payments ecosystem, a new set of fraud threats is materialising. Financial institutions and intermediaries are faced with an unprecedented range of technologies and form factors, thanks to the digital transformation of commerce. The system is increasingly fragmented, and to top it off, now we have to combat fraud in real-time.
It’s unsurprising that Card Not Present fraud is on the rise; overall transaction volumes of CNP are increasing as we adopt multiple payments services including mobile payments, digital wallets, social payments and more. That’s not even including the potential explosion in micro-payments from connected devices as the Internet of Things becomes an everyday reality.
Fraud prevention is like an arms-race - it might seem like this diversification of payments technology just means more potential avenues for fraudsters’ attacks. But at the same time they have been developing phishing, malware and bots, the payments industry has been investing in machine learning and AI, encryption and tokenisation, Multi-Factor and Knowledge Based Authentication.
Resilience in Real-Time
Now the next big challenge is developing robust security for immediate payments. Real-time payments require real-time fraud prevention. This begins pre-payment, with payments providers investing in message encryption, digital certificates, and data capture. In its first incarnation, immediate payments will be initiated by consumers and corporates. Merchants will join the immediate payments revolution later than their ecosystem partners. In a real-time world, it’s not enough to focus fraud prevention on just the payments experience. Fraud prevention has to be considered end-to-end in the same way as customer experience. Strong authentication will be a major factor in achieving a secure transaction—within an excellent customer experience.
Finding the friction sweet spot
In the new payments ecosystem, strong authentication will no longer be needed for each transaction. If it is performed once, then payments to known receivers can flow freely. What will be key is authentication and authorisation management through monitoring relevant data. The implementation of global account numbers, predictive analytics, actionable alerting rules, and behavioural profiling will mean that authentication and authorisation can be streamlined to reduce unnecessary, repetitive checks. This will have positive impacts for merchants and their abandoned basket rates – a smoother purchasing process reduces customer drop-off.
The complication lies in balancing all the ways that customers want to pay...with security. Payments are open, with this openness being driven by consumer demand and regulators. PSD2 aims to drive open payments to encourage innovation in a traditionally staid industry. The mandate looks to support an open and secure payments ecosystem through its requirements for strong authentication. But PSD2’s goals for open banking will not succeed without frictionless authentication and a system of trust. The challenge for all financial institutions and intermediaries is to find just the right amount of friction for it to be smooth yetsecure. We want frictionless, but not so it feels like pickpocketing.
Find out more about how you can achieve frictionless fraud prevention with the latest eBook from our New Payments Ecosystem series: SECURE! How real-time and openness change the payment fraud ecosystem.
Related Blog Posts
How Italian Banks and Processors Can Capitalize on Digital Transformation
The European payments landscape is in an era of significant change thanks to PSD2 and other macro factors, but there is more than one way to deliver real-time and open payments to meet PSD2 requirements and its technical standards. Banks and processors must manage this alongside their own set of domestic challenges and opportunities.
Overcoming Cyber Threats to Payments Security
Recently, Gene Scriven, chief information security officer at ACI, spoke at NACHA Payments 2019 on the ever-changing landscape of cybersecurity. Here are a few highlights from his session, including the impacts of cybersecurity breaches, today’s emerging threats and the new strategies to keep your organization safe.
Removing Gender Bias and Enabling Women to Succeed in Leadership Roles
The recent UK Women in Payments (WIP) Symposium 2019 took place in London, recognizing unique leaders who help uplift women in the payments industry. Among those recognized was ACI’s Melissa McKendry, vice president, Retail Banking Implementation Services, who was honored by WIP as the 2019 Advocate for Women.
Regulating for Real-Time: The Role of Government in Payments Modernization
Dr. Leo Lipis and Craig Ramsey, Head of Real-Time Payments for ACI Worldwide, continue their discussion on real-time payments and the findings of the new white paper, Get More from Real-Time.
Payments and Fraud: The Paradox Twins
Digital commerce through web and mobile is where merchants predominantly experience shopper growth today. This has become a hugely important domain for their focus. It offers a means for international growth, new market penetration and a way to engage with shopper-hungry Millennials in their culture. Merchants frequently adopt a Digital-First, eCommerce-First or Mobile-First strategy to ensure full corporate buy-in to this strategy.
Open Payments Systems for Merchants: Don't Close Down Your Options
Remember “Open Systems”?
It was a big industry nom du jour in the 80s and 90s. Every IT system had to be open and therefore flexible and future-proof. Nobody can argue with the logic behind this; making systems easy to integrate with other systems, ensuring vendors could cooperate with one another; creating agility to improve time to market and drive down costs.
Issuing and Acquiring in a Real-Time and Open Payments Ecosystem – The Global Picture
Dr Leo Lipis and Craig Ramsey, Head of Real-Time Payments for ACI Worldwide, continue their discussion on real-time payments, stemming from the findings of the new white paper, Get More from Real-Time. See part one.
Why It’s Time for Women to Rise UP
As a senior software engineer at ACI Worldwide, Rawan Shawar helps to guide her team’s priorities and enhance processes at both the team and organizational level. Recently, Rawan was selected by the organizers of Money20/20 Asia to be part the Rise Up Class of 2019.
Can Digital Payments Be Kind?
There is no doubt that the era of less (or minimal) cash is truly upon us. According to the Access to Cash Review, cash could fall to just 10 percent of all payments in the UK within the next 15 years.
Other countries, such as Sweden, have already seen significant changes – cashless payments have grown so quickly that only 10 percent of the 20 SEB banks in Stockholm now hold cash. Beyond Europe, China is leading the way with USD$12.8 trillion in mobile payment transactions in 2018.